logo

Knowledge Base

Access official resources from Carbon Black experts

IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

Endpoint Standard: 9th February 2021: Microsoft Office temp files being identified as Potential Malware.

Endpoint Standard: 9th February 2021: Microsoft Office temp files being identified as Potential Malware.

Environment

  • Carbon Black Cloud Console : All Versions
  • Endpoint Standard Sensor: 3.6.0.1897 and above
  • Microsoft Windows: All Supported Versions
  • Microsoft Office

Symptoms

  • On the 9th of February 2021, Microsoft Office temporary files started being blocked.
  • These files were alerted in the console as 'Potential Malware'. 
  • This issue is affecting a small subset of customers.

Cause

This issue is related to an AMSI rules rollout that took place on 9th February 2021.

Resolution


Was this article helpful? Yes No
100% helpful (3/3)
Article Information
Author:
CB_Support
Creation Date:
‎02-11-2021
Views:
784
Contributors
logo

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.